Privacy Policy

Effective date: 10 November 2025 – Updated 10 April 2026

TrueSource Nutrition & Coaching Ltd (“we”, “our”, “us”) is committed to protecting your privacy and handling personal data in a transparent, lawful, and secure manner. This page explains how we collect, use, and protect your information, as well as the terms under which our website, programmes, and services are provided.

TrueSource Nutrition & Coaching Ltd is the data controller for the purposes of the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

1. Privacy Policy

1.1 Information we collect

We may collect and process the following categories of personal data:

  • Identity & Contact Information: name, email address, telephone number
  • Account Information: login credentials and account preferences (where applicable), member details
  • Health & Lifestyle Information: information you voluntarily provide for coaching or programme personalisation, nutritional targets, dietary preferences, fitness goals, progress photographs, lifestyle information. This may constitute special category health data under UK GDPR.
  • Payment Information: payments are processed securely by third-party providers (such as Stripe or PayPal); we do not store full credit or debit card details on our servers. We retain limited transaction information necessary for accounting, record-keeping, and customer support purposes.
  • Technical & Usage Data: IP address, browser type, device information, pages visited, and interactions with our website (via cookies and analytics)

1.2 How We Collect Information

We collect information when you:

  • Complete forms on our website
  • Register for an account or membership
  • Purchase products or digital content
  • Download free resources or lead magnets
  • Subscribe to email communications
  • Interact with our website via cookies and analytics tools (e.g. Google Analytics)

Where enabled, our Progressive Web Application (PWA) may collect anonymised usage data including the number of app installations and sessions initiated from the app. This data is used solely to understand how members engage with the platform and to improve the user experience. We may also use UTM tracking parameters to identify visits originating from the PWA within Google analytics. This data is processed accordance with googles privacy policy and our existing analytics disclosure.

1.3 Lawful Basis for Processing

We process personal data under the following lawful bases:

  • Contract: to provide services, memberships, programmes, and digital products
  • Legitimate Interests: to improve our website, services, platform and user experience
  • Consent: For marketing communications and processing of health-related information where required. You may withdraw consent at any time.
  • Legal Obligation: To comply with tax, accounting, fraud prevention, and regulatory requirements.

Email Marketing & Lead Magnets

When you download a free resource, guide, or other lead magnet, we collect your email address to:

  • Deliver the requested content
  • Provide related educational material
  • Send promotional content where you have explicitly opted in

You will only receive marketing emails if you actively consent.

You may unsubscribe at any time using the link provided in emails.

1.4 How We Store and Protect Data

  • Personal data is stored securely using encrypted systems and access-controlled platforms
  • We retain data only for as long as necessary to provide services and meet legal obligations
  • We take reasonable technical and organisational measures to protect your information

Some of our service providers are located outside the United Kingdom. Where personal data is transferred internationally, we ensure appropriate safeguards are in place, including Standard Contractual Clauses or other legally approved transfer mechanisms.

Our Progressive Web Application (PWA) may store limited data locally on your device to enable offline functionality and improve performance. This may include cached content and session information. This data remains on your device and is not transmitted to our servers unless you are actively using the platform. You can remove locally stored data by uninstalling the PWA or clearing your browsing cache.

1.5 Sharing of Personal Data

We do not sell personal data.

We may share limited data with trusted third parties who assist in operating our business, including:

  • Website hosting providers
  • Payment processors
  • Email marketing platforms
  • Analytics providers
  • Technical service providers
  • Professional advisers (legal or accounting)

All third parties are required to process data securely and only for specified purposes.

1.6 Data Retention

We retain personal data only as long as necessary for its intended purpose.

  • Membership and account data may be retained for up to 6 years after termination for legal, tax, and accounting purposes.
  • Marketing data is retained until you withdraw consent.
  • Health-related data is retained for the duration of membership and up to 6 years thereafter for record-keeping and legal protection.

You may request deletion of your personal data, subject to legal obligations.

1.7 Security

We implement appropriate technical and organisational measures to protect personal data, including:

  • Encrypted systems
  • Secure hosting
  • Access controls
  • Regular security monitoring

While we take reasonable precautions, no system can guarantee absolute security.

1.8 Your Rights Under UK GDPR

You have the right to:

  • Access your personal data
  • Request correction of inaccurate data
  • Request erasure (subject to legal obligations)
  • Restrict or object to processing
  • Withdraw consent for marketing
  • Request transfer of your data
  • Lodge a complaint with the Information Commissioner’s Office (ICO)

To exercise your rights, please contact:
📧 info@truesourceuk.co.uk